[THIN] Re: OT: Security response to BAGLE virus (password protected .z ips)
- From: "Claus, Brian" <BClaus@xxxxxxxxxxxxx>
- To: <thin@xxxxxxxxxxxxx>
- Date: Thu, 4 Mar 2004 14:58:27 -0500
Thank you Jesse, we have implemented this change. IMSS is now scanning
and delivering legit .zips and dropping all pw protected .zips. =20
IMO the BAGLE virus has caused the death of p\w protected .zips. It was
only a matter of time until someone took advantage of that weakness.
=20
_____ =20
=20
Brian Claus, A+, Network+, MCP
Network Administrator
WESCO Distribution, Inc.
225 West Station Square Drive, Suite 700
Pittsburgh, PA 15219-1122
Phone: 412-454-2412
Fax: 412-454-2540
bclaus@xxxxxxxxxxxxx <mailto:bclaus@xxxxxxxxxxxxx>=20
_____ =20
-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On
Behalf Of King, Jesse
Sent: Thursday, March 04, 2004 8:37 AM
To: 'thin@xxxxxxxxxxxxx'
Subject: [THIN] Re: OT: Security response to BAGLE virus (password
protected .z ips)
We have the trend a/v suite as well.=20
At the gateway, with IMSS, you can have it delete, deliver, or
quarantine
password protected files.
FYI..
-----Original Message-----
From: Claus, Brian [mailto:BClaus@xxxxxxxxxxxxx]=20
Sent: Thursday, March 04, 2004 8:28 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] OT: Security response to BAGLE virus (password protected
.z
ips)
Just wondering what others are doing to combat the latest BAGLE worm. =
=3D
It's password protected so standard AV won't scan into it. How is =3D
everyone else handling delivery of .zip files now?
We're using the Trend Micro AV suite.
Do you think the latest password protected BAGLE worm has caused the =3D
demise of password protected .zip files?
My immediate opinion in the matter is that password protected .zip files
=3D
will now be treated with the same delivery restrictions that the .exe, =
=3D
.scr, .pif, .vbs have come under but I'm not aware of any AV software or
=3D
other means to differentiate scanning options between p\w protected .zip
=3D
files and non p\w protected .zip files.
Thanks,
=3D20
_____ =3D20
=3D20
Brian Claus, A+, Network+, MCP
Network Administrator
WESCO Distribution, Inc.
225 West Station Square Drive, Suite 700
Pittsburgh, PA 15219-1122
Phone: 412-454-2412
Fax: 412-454-2540
bclaus@xxxxxxxxxxxxx <mailto:bclaus@xxxxxxxxxxxxx>=3D20
_____ =3D20
********************************************************
This weeks sponsor triCerat Inc.
triCerat makes your job easier by offering essential applications to
eliminate your printing, policy and profile, and your application
management
problems. http://www.triCerat.com=20
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm
********************************************************
This weeks sponsor triCerat Inc.
triCerat makes your job easier by offering essential
applications to eliminate your printing, policy and profile,
and your application management problems.
http://www.triCerat.com=20
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm
********************************************************
This weeks sponsor triCerat Inc.
triCerat makes your job easier by offering essential
applications to eliminate your printing, policy and profile,
and your application management problems.
http://www.triCerat.com
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm
Other related posts:
